$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: j9A3ow2KJOm443duaaX1L3y/YzSb+CXVbDHu2fFEp1c= Subject key identifier: 7A:93:28:37:CE:41:95:08:02:18:94:D4:94:D8:8A:28:10:F7:C2:0A Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 0791 Signing time: Thu 24 Apr 2025 21:44:52 +0000 Manifest this update: Thu 24 Apr 2025 21:44:51 +0000 Manifest next update: Thu 01 May 2025 21:44:51 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: iABxeHr3450bRZEAO6bPyw3WHVNb1EdoSXdNa01DVDA=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Apr 24 21:44:51 2025 GMT Not After : May 1 21:44:51 2025 GMT Subject: CN=680ab0d3-7ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:31:bc:c9:19:f4:8b:d7:fa:f0:c5:25:14:cb: 94:28:17:fc:51:c7:cb:f8:0e:e8:88:3b:2d:3c:a9: 19:c0:80:ad:98:09:0f:fc:e3:3f:e9:9a:0e:ed:9e: e8:dc:e1:f9:cc:5e:e4:e4:35:c5:32:07:3f:bd:f8: 30:3c:43:ec:8a:70:7b:94:ba:19:88:a4:98:05:8a: d5:9c:12:54:2f:7f:c3:82:22:cf:25:60:a6:a7:2d: 10:5d:64:0f:01:6f:a6:83:85:58:3d:f6:35:40:6d: b9:32:9d:ba:8e:1e:c5:bc:6c:48:11:c9:2a:34:cb: 38:27:76:7c:65:32:ad:da:81:fa:a0:d3:61:5c:21: f6:37:d9:50:39:45:fd:5d:47:e2:8f:aa:62:d2:d4: 67:15:3c:57:ef:70:cf:f8:55:5a:8e:c7:34:16:36: 91:70:39:ed:d2:f5:60:38:8b:87:fd:b3:95:d2:5a: e5:37:10:a1:72:d2:c0:69:f6:8c:ae:73:b7:c6:14: e4:6b:8d:2e:9a:c4:1d:4b:8c:ac:73:d8:14:18:c8: 4a:74:d2:c9:e4:87:65:69:82:29:84:68:d9:57:c9: 20:69:1a:0a:1e:c3:31:d8:c3:c3:89:e1:c2:61:3e: 0e:8d:74:b0:cd:17:c2:0e:b9:95:c8:8a:9d:24:ff: 22:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:93:28:37:CE:41:95:08:02:18:94:D4:94:D8:8A:28:10:F7:C2:0A X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:30:ac:e5:40:b1:c2:e5:b0:d1:87:a8:a6:2c:5a:d7:50:ee: 9c:7d:db:17:f7:24:0b:d9:db:cf:e1:f2:91:3c:32:3c:74:3c: 96:e7:89:64:07:5f:a4:9c:d8:95:5c:28:e4:4c:55:8a:3a:1e: 48:3f:8b:09:78:fd:e5:bc:9a:a0:5a:47:61:b2:01:16:f8:42: a6:f9:11:77:56:83:11:ea:0e:60:d1:8c:8f:13:31:02:d3:79: 16:96:d9:f0:6d:6d:77:d6:3d:5e:4b:5a:9e:2a:99:e6:d8:77: 08:6d:4a:31:f5:61:65:62:89:57:74:0d:90:49:e2:2f:55:37: cf:27:9e:0d:3e:83:ad:e2:d3:4c:83:6e:28:f1:ea:7b:46:5a: f0:6f:f2:52:9b:94:a9:5e:9d:83:4e:6d:47:e5:a1:72:bb:0a: 75:eb:0f:24:9c:da:d9:ac:44:b7:78:d2:9f:88:7a:68:2d:54: 7c:a0:f0:1c:75:a5:37:4e:37:2b:5b:5e:c8:5c:d4:3f:2d:1e: 1e:98:f3:c8:38:13:d7:56:7b:5f:7a:49:d9:3f:41:6f:70:4d: a2:11:70:52:a5:0b:e7:5e:39:79:b4:17:70:f9:02:e8:3b:fc: b9:1d:58:d5:4d:cf:0d:1b:47:9d:dd:5e:f2:dd:f5:b0:89:54: ae:a2:84:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNDI0MjE0NDUxWhcNMjUwNTAxMjE0NDUxWjAYMRYwFAYD VQQDEw02ODBhYjBkMy03YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTG8yRn0i9f68MUlFMuUKBf8UcfL+A7oiDstPKkZwICtmAkP/OM/6ZoO7Z7o 3OH5zF7k5DXFMgc/vfgwPEPsinB7lLoZiKSYBYrVnBJUL3/DgiLPJWCmpy0QXWQP AW+mg4VYPfY1QG25Mp26jh7FvGxIEckqNMs4J3Z8ZTKt2oH6oNNhXCH2N9lQOUX9 XUfij6pi0tRnFTxX73DP+FVajsc0FjaRcDnt0vVgOIuH/bOV0lrlNxChctLAafaM rnO3xhTka40umsQdS4ysc9gUGMhKdNLJ5IdlaYIphGjZV8kgaRoKHsMx2MPDieHC YT4OjXSwzRfCDrmVyIqdJP8iswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqTKDfO QZUIAhiU1JTYiigQ98IKMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXMKzlQLHC5bDRh6imLFrXUO6cfdsX9yQL2dvP4fKRPDI8dDyW54lk B1+knNiVXCjkTFWKOh5IP4sJeP3lvJqgWkdhsgEW+EKm+RF3VoMR6g5g0YyPEzEC 03kWltnwbW131j1eS1qeKpnm2HcIbUox9WFlYolXdA2QSeIvVTfPJ54NPoOt4tNM g24o8ep7Rlrwb/JSm5SpXp2DTm1H5aFyuwp16w8knNrZrES3eNKfiHpoLVR8oPAc daU3TjcrW17IXNQ/LR4emPPIOBPXVntfeknZP0FvcE2iEXBSpQvnXjl5tBdw+QLo O/y5HVjVTc8NG0ed3V7y3fWwiVSuooR3 -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:45 2025 by rpki-client